In this week's global legislative roundup, IAPP Editorial Director Jedidiah Bracy, CIPP, gave a final look at the pros and cons associated with the California Privacy Rights Act ballot initiative. Fangda Partners' Gil Zhang, CIPP/A, CIPP/E, CIPM, FIP, and Kate Yin took a dive into China's draft Personal Data Protection Law. The U.K. Information Commissioner's Office dropped its long-awaited fine against Marriott International. Australia is preparing to review the Privacy Act of 1988. And data protection authorities in New Zealand and Turkey discussed data transfers under their regulatory regimes.
THE LATEST
The Conference of Independent German Federal and State Data Protection Supervisory Authorities, Datenschutzkonferenz, released guidance regarding data protection considerations for videoconferencing.
More
The U.S. Department of Health and Human Services' Office for Civil Rights announced a $202,400 fine against the City of New Haven, Connecticut, for Health Insurance Portability and Accountability Act violations.
More
ICYMI
Following a ministerial decree from Belgium's Ministry of Employment, Economy and Consumer Affairs, NOYB, a nonprofit group created by Max Schrems, announced it is permitted to file collective action suits in Belgium under the Belgian Code of Economic Law. IAPP Staff Writer Joe Duball had details for The Privacy Advisor.
More
For Privacy Tracker, Fangda Partners' Gil Zhang, CIPP/A, CIPP/E, CIPM, FIP, and Kate Yin take a look at China's draft Personal Data Protection Law and examine the similarities it bears to the EU General Data Protection Regulation.
More
MLAB Of Counsel Juan Montero broke down the Spanish Supreme Court decision to overturn private hire vehicle data-sharing obligations in this piece for Privacy Tracker.
More
For The Privacy Advisor, IAPP Editorial Director Jedidiah Bracy, CIPP, breaks down the arguments for and against California's Proposition 24 made by advocacy groups, newspapers and lawmakers, as well as the concerns privacy practitioners have about implementing the California Privacy Rights Act.
More
In an episode of The Privacy Advisor Podcast, Bracy chats with Californians for Consumer Privacy Founder Alastair Mactaggart, the architect of Prop. 24, about the ins and outs of the CPRA and allows Mactaggart a chance to respond to the arguments made by those who oppose the ballot initiative.
More
ENFORCEMENT
The European Data Protection Supervisor published a strategic document to help EU institutions comply with the Court of Justice of the European Union's "Schrems II" ruling.
More
France's data protection authority, the Commission nationale de l'informatique et des libertés, released guidance regarding data of deceased individuals.
More
Israel's Privacy Protection Authority published recommendations for organizations to follow when hiring privacy officers.
More
Norway's data protection authority, Datatilsynet, announced a fine of NOK 750,000 to Sykehuset Østfold for violations related to alleged mishandling of sensitive patient information.
More
Turkey's data protection authority, the Kişisel Verileri Koruma Kurumu, issued a statement on transborder data transfers under the country's data protection law.
More
The U.K. Information Commissioner's Office fined Marriott International 18.4 million GBP for violations of the EU General Data Protection Regulation related to its 2018 data breach. The ICO also sent Experian an enforcement notice ordering the company to change the data-handling processes for its direct marketing services.
More
The U.S. Department of Health and Human Services' Office for Civil Rights announced a $1 million settlement with Aetna Life Insurance related to Health Insurance Portability and Accountability Act violations.
More
The U.S. Federal Trade Commission finalized a settlement with NTT Global Data Centers Americas over allegations it falsely claimed participation in the EU-U.S. Privacy Shield framework.
More
AFRICA
The office of Rwanda Prime Minister Édouard Ngirente announced the Cabinet voted to approve the country's draft data protection bill.
More
ASIA-PACIFIC
The Attorney-General's Department of the Australian government announced the Privacy Act 1988 will come under a wide-ranging review to "ensure privacy settings empower consumers, protect their data and best serve the Australian economy."
More
The Herald Sun reports Australian telecommunications companies are urging the government to address a potential loophole for data retention in the Telecommunications Act.
More
In an interview with The Economic Times, Justice B. N. Srikrishna said India should wait for the Personal Data Protection Bill to be enacted before moving forward with several digital initiatives.
More
The Office of the Privacy Commissioner of New Zealand discussed the country's new transborder data transfer rules, which will go into effect Dec. 1.
More
CANADA
A class-action lawsuit filed by two Canadian Facebook users alleges the social media company misused personal information for political purposes, CTV News reports.
More
EUROPE
German Federal Commissioner for Data Protection and Freedom of Information Ulrich Kelber notes “several shortcomings” in a draft law that would enable intelligence services to monitor messenger services.
More
US
The Brookings Institution looks at how the 2020 U.S. presidential election may affect the trajectory of a federal privacy law.
More
In an update to an earlier announcement, Consumer Reports said it now endorses Prop. 24, the California Privacy Rights Act.
More
The Virginia Supreme Court ruled law enforcement agencies can continue collecting license plate data from automated license plate readers, Courthouse News Service reports.
More
A Wisconsin appeals court recommends the state Supreme Court consider a case claiming law enforcement’s recovery of cellphone data to charge a man with homicide violated his Fourth Amendment rights, the Wisconsin Examiner reports.
More